Home / Technology / FIFA Hack: Live Streams Hijacked!

FIFA Hack: Live Streams Hijacked!

18 Jun

•

Summary

A FIFA API flaw allowed hijacking of live TV streams.
The vulnerability stemmed from authorization check failures.
FIFA patched the bug but did not credit the finder.

A significant security flaw within FIFA's internal systems was recently discovered, enabling unauthorized individuals to manipulate live TV streams and commentator feeds for the FIFA 2026 World Cup. The vulnerability, identified by a security researcher known as BobDaHacker, allowed for complete control over broadcast content.

This critical vulnerability arose from the API's failure to implement proper authorization checks. BobDaHacker demonstrated that an attacker could have potentially hijacked all cameras simultaneously, leading to widespread disruption. The potential impact was immense, considering the average live audience of 175 million viewers per match.

FIFA acted swiftly, patching the vulnerability within hours of its discovery. However, reports indicate that the organization did not credit the researcher for their crucial find. Cybersecurity experts have highlighted this incident as a prime example of CWE-602, emphasizing the vital distinction between authentication and authorization for developers.

Disclaimer: This story has been auto-aggregated and auto-summarised by a computer program. This story has not been edited or created by the Feedzop team.